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Cryptogra phy and data security 
Dorothy Elizabeth Robling Denning 
January 1982 Book 

Publisher: Addison-Wesley Longman Publishing Co., Inc. 

Full text available- 15) pdf(1 9 47 MB) Additional Information: full citation , abstract , references , cited by . index 

terms 

From the Preface (See Front Matter for full Preface) 

Electronic computers have evolved from exiguous experimental enterprises in the 1940s 
to prolific practical data processing systems in the 1980s. As we have come to rely on 
these systems to process and store data, we have also come to wonder about their ability 
to protect valuable data. 

Data security is the science and study of methods of protecting data in computer and 
communication systems from unauthorized disclosure ... 



Architecture for Protectin g Critical Secrets in Microprocessors 

Ruby B. Lee, Peter C. S. Kwan, John P. McGregor, Jeffrey Dwoskin, Zhenghong Wang 

May 2005 ACM SIGARCH Computer Architecture News , Proceedings of the 32nd 

annual international symposium on Computer Architecture ISCA '05, volume 

33 Issue 2 

Publisher: IEEE Computer Society, ACM Press 

Full text available: ^| pdf(143.62 KB) Additional Information: full citation , abstract , cited by . index terms 

We propose "secret-protected (SP)" architecture to enable secure and convenient 
protection of critical secrets for a given user in an on-line environment. Keys are 
examples of critical secrets, and key protection and management is a fundamental 
problem i often assumed but not solved i underlying the use of cryptographic protection 
of sensitive files, messages, data and programs. SP-processors contain a minimalist set of 
architectural features that can be built into a general-purpose microprocess ... 

Link and channel measurement: A simple mechanism for capturin g and re playing 

wireless channels 

Glenn Judd, Peter Steenkiste 

August 2005 Proceeding of the 2005 ACM SIGCOMM workshop on Experimental 
approaches to wireless network design and analysis E-WIND '05 
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Publisher: ACM Press 

Full text available: ^ pdf(6.06 MB) Additional Information: full citation , abstract , references , index terms 

Physical layer wireless network emulation has the potential to be a powerful experimental 
tool. An important challenge in physical emulation, and traditional simulation, is to 
accurately model the wireless channel. In this paper we examine the possibility of using 
on-card signal strength measurements to capture wireless channel traces. A key 
advantage of this approach is the simplicity and ubiquity with which these measurements 
can be obtained since virtually all wireless devices provide the req ... 

Keywords: channel capture, emulation, wireless 



4 Ex ploiting perception in high-fidelity virtual environments: Exploiting perception in 
^ hig h-fidelity virtual environments 

Additional presentations from the 24th course are available on the citation 

page 

Mashhuda Glencross, Alan G. Chalmers, Ming C. Lin, Miguel A. Otaduy, Diego Gutierrez 
July 2006 ACM SIGGRAPH 2006 Courses SIGGRAPH '06 
Publisher: ACM Press 

Full text available: ^| pdf(5.07 MB) Q Additional Information: full citation , ap pendices and suppiements . 

mov(68:6 MIN) abstract , references , cited by . index terms 

The objective of this course is to provide an introduction to the issues that must be 
considered when building high-fidelity 3D engaging shared virtual environments. The 
principles of human perception guide important development of algorithms and 
techniques in collaboration, graphical, auditory, and haptic rendering. We aim to show 
how human perception is exploited to achieve realism in high fidelity environments within 
the constraints of available finite computational resources. In this course w ... 

Keywords: collaborative environments, haptics, high-fidelity rendering, human-computer 
interaction, multi-user, networked applications, perception, virtual reality 



Measurement: A hi g h-level pro g rammin g environment for packet trace anonymization 
and transformation 
Ruoming Pang, Vern Paxson 

August 2003 Proceedings of the 2003 conference on Applications, technologies, 

architectures, and protocols for computer communications SIGCOMM '03 

Publisher: ACM Press 

Full text available* 151 Ddf(251 27 KB) Additional Information: full citation , abstract , references , citings, index 

! terms 

Packet traces of operational Internet traffic are invaluable to network research, but public 
sharing of such traces is severely limited by the need to first remove all sensitive 
information. Current trace anonymization technology leaves only the packet headers 
intact, completely stripping the contents; to our knowledge, there are no publicly 
available traces of any significant size that contain packet payloads. We describe a new 
approach to transform and anonymize packet traces. Our tool provide ... 

Keywords: anonymization, internet, measurement, network intrusion detection, packet 
trace, privacy, transformation 
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Rajiv Gupta, Scott A. Smolka, Shaji Bhaskar 

March 1994 ACM Computing Surveys (CSUR), volume 26 issue l 
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Publisher: ACM Press 

Full text available: ffl P df(8.01 MB) Additional Information: full citation , abstract , references , citings , index 
^ terms 

Probabilistic, or randomized, algorithms are fast becoming as commonplace as 
conventional deterministic algorithms. This survey presents five techniques that have 
been widely used in the design of randomized algorithms. These techniques are illustrated 
using 12 randomized algorithms— both sequential and distributed— that span a wide 
range of applications, including :primality testing (a classical problem in number theory), 
interactive probabilistic proof s ... 

Keywords: Byzantine agreement, CSP, analysis of algorithms, computational complexity, 
dining philosophers problem, distributed algorithms, graph isomorphism, hashing, 
interactive probabilistic proof systems, leader election, message routing, nearest- 
neighbors problem, perfect hashing, primality testing, probabilistic techniques, 
randomized or probabilistic algorithms, randomized quicksort, sequential algorithms, 
transitive tournaments, universal hashing 



7 A survey on peer-to-peer key mana g ement for mobile ad hoc networks 
Johann Van Der Merwe, Dawoud Dawoud, Stephen McDonald 
April 2007 ACM Computing Surveys (CSUR), volume 39 issue i 
Publisher: ACM Press 

Full text available: ^[ pdf(872.71 KB ) Additional Information: full citation , abstract , references , index terms 

The article reviews the most popular peer-to-peer key management protocols for mobile 
ad hoc networks (MANETs). The protocols are subdivided into groups based on their 
design strategy or main characteristic. The article discusses and provides comments on 
the strategy of each group separately. The discussions give insight into open research 
problems in the area of pairwise key management. 



Keywords: Mobile ad hoc networks, pairwise key management, peer-to-peer key 
management, security 



8 Efficient Memory Inte g rity Verification and Encryption for Secure Processors 
G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas Devadas 
December 2003 Proceedings of the 36th annual IEEE/ACM International Symposium 

on Microarchitecture MICRO 36 
Publisher: IEEE Computer Society 

Full text available: ^[ pdf(3Q7.01 KB ) Additional Information: full citation , abstract , citings, index terms 

Secure processors enable new sets of applications suchas commercial grid computing, 
software copy-protection,and secure mobile agents by providing security from 
bothphysical and software attacks. This paper proposes newhardware mechanisms for 
memory integrity verification andencryption, which are two key primitives required in 
single-chipsecure processors. The integrity verification mechanismoffers significant 
performance advantages over existingones when the checks are infrequent as in grid 
com ... 



9 Authentication and passwords: Beamauth: two-factor web authentication with a 
bookmark 
Ben Adida 

October 2007 Proceedings of the 14th ACM conference on Computer and 
communications security CCS '07 



http://portal.acm.org/resultsxfo 11/20/07 



Results (page 1): -^identification +tagging, +hash, ^message +authentication +code, +proc... Page 4 of 7 



Publisher: ACM 

Full text available: Q pdf(294.94 KB) Additional Information: full citation , abstract , references , index terms 

We propose BeamAuth, a two-factor web authentication technique where the second 
factor is a specially crafted bookmark. BeamAuth presents two interesting features: (1) 
only server-side deployment is required alongside any modern, out-of-the-box web 
browser on the client side, and (2) credentials remain safe against many types of phishing 
attacks, even if the user fails to check proper user interface indicators. BeamAuth is 
deployable immediately by any login-protected web ... 

Keywords: phishing, two-factor authentication, web security 



10 Comprehensively and efficientl y protecting the heap 

Mazen Kharbutli, Xiaowei Jiang, Yan Solihin, Guru Venkataramani, Milos Prvulovic 
October 2006 ACM SIGPLAN Notices , ACM SIGARCH Computer Architecture News , 
ACM SIGOPS Operating Systems Review , Proceedings of the 12th 
international conference on Architectural support for programming 
languages and operating systems ASPLOS-XII, volume 4i , 34 , 40 issue n , 5 , 

5 

Publisher: ACM Press 

Full text available: Q pdf(329.47 KB) Additional Information: full citation , abstract , references , index terms 

The goal of this paper is to propose a scheme that provides comprehensive security 
protection for the heap. Heap vulnerabilities are increasingly being exploited for attacks 
on computer programs. In most implementations, the heap management library keeps 
the heap meta-data (heap structure information) and the application's heap data in an 
interleaved fashion and does not protect them against each other. Such implementations 
are inherently unsafe: vulnerabilities in the application can cause the ... 

Keywords: computer security, heap attacks, heap security, heap server 




11 Astrolabe: A robust and scalable technolo g y for distributed system monitoring . 
mana g ement, and data mining 

Robbert Van Renesse, Kenneth P. Birman, Werner Vogels 

May 2003 ACM Transactions on Computer Systems (TOCS), volume 21 issue 2 
Publisher: ACM Press 

Full text available- f£| pdf (341.62 KB) Addjtional Information: full citation , abstract , references , citings, index 
' ^ terms 

Scalable management and self-organizational capabilities are emerging as central 
requirements for a generation of large-scale, highly dynamic, distributed applications. We 
have developed an entirely new distributed information management system called 
Astrolabe. Astrolabe collects large-scale system state, permitting rapid updates and 
providing on-the-fly attribute aggregation. This latter capability permits an application to 
locate a resource, and also offers a scalable way to track sys ... 

Keywords: Aggregation, epidemic protocols, failure detection, gossip, membership, 
publish-subscribe, scalability 



12 A composable framework for secure multi-modal access to internet services from 
Post-PC devices 

Steven J. Ross, Jason L. Hill, Michael Y. Chen, Anthony D. Joseph, David E. Culler, Eric A. 
Brewer 

October 2002 Mobile Networks and Applications, volume 7 issue 5 
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Publisher: Kluwer Academic Publishers 

Full text available: fSl pdf(340.33 KB) Additional Information: full citation , abstract, references , citings, index 

terms , review 

The Post-PC revolution is bringing information access to a wide range of devices beyond 
the desktop, such as public kiosks, and mobile devices like cellular telephones, PDAs, and 
voice based vehicle telematics. However, existing deployed Internet services are geared 
toward the secure rich interface of private desktop computers. We propose the use of an 
infrastructure-based secure proxy architecture to bridge the gap between the capabilities 
of Post-PC devices and the requirements of Internet ser ... 

Keywords: internet, middleware, post-PC, security, transcoding 



13 Sealin g OS processes to improve dependability and safety 

Galen Hunt, Mark Aiken, Manuel Fahndrich, Chris Hawblitzel, Orion Hodson, James Larus, 
Steven Levi, Bjarne Steensgaard, David Tarditi, Ted Wobber 

March 2007 ACM SIGOPS Operating Systems Review , Proceedings of the ACM 
SIGOPS/EuroSys European Conference on Computer Systems 2007 
EuroSys '07, Volume 41 Issue 3 

Publisher: ACM 

Full text available: ^| pdf(281.05 KB) Additional Information: full citation , abstract , references , index terms 

In most modern operating systems, a process is a hard ware -protected abstraction for 
isolating code and data. This protection, however, is selective. Many common 
mechanisms— dynamic code loading, run-time code generation, shared memory, and 
intrusive system APIs— make the barrier between processes very permeable. This paper 
argues that this traditional open process architecture exacerbates the dependability and 
security weaknesses of modern systems. 

As a remedy, this paper prop ... 

Keywords: open process architecture, sealed kernel, sealed process architecture, 
software isolated process (SIP) 



14 Performance debugging for distributed systems of black boxes j§Sj 
^ Marcos K. Aguilera, Jeffrey C. Mogul, Janet L. Wiener, Patrick Reynolds, Athicha 

^ Muthitacharoen 

October 2003 ACM SIGOPS Operating Systems Review , Proceedings of the nineteenth 
ACM symposium on Operating systems principles SOSP '03, volume 37 issue 
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Publisher: ACM Press 

Full text available* 1531 pdf(408 85 KB) Add ' tional Information: full citation , abstract , references , citings , index 
'^ p — { : — ; — terms 

Many interesting large-scale systems are distributed systems of multiple communicating 
components. Such systems can be very hard to debug, especially when they exhibit poor 
performance. The problem becomes much harder when systems are composed of "black- 
box" components: software from many different (perhaps competing) vendors, usually 
without source code available. Typical solutions-provider employees are not always skilled 
or experienced enough to debug these systems efficiently. Our goal is to ... 

Keywords: black box systems, distributed systems, performance analysis, performance 
debugging 
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counterfeitin g 

Thorsten Staake, Frederic Thiesse, Elgar Fleisch 

March 2005 Proceedings of the 2005 ACM symposium on Applied computing SAC '05 

Publisher: ACM Press 

Full text available- fi5 Dd«106 51 KB) Additional Information: full citation, abstract , references , citings, index 
■ : terms 

The International Chamber of Commerce estimates that seven percent of the world trade 
is in counterfeit goods, with the counterfeit market being worth 500 billion USD in 2004. 
Many companies already use overt anti-counterfeiting measures like holograms to confine 
counterfeiting and product piracy. However, current techniques are not suited for 
automated tests of product authenticity as required in warehouses, or do not provide the 
required level of security. In this context, Radio Frequency Iden ... 

Keywords: RFID, authentication, counterfeiting, track & trace 



16 D ynamic software updatin g 
^ Michael Hicks, Scott Nettles " 

^v 7 November 2005 ACM Transactions on Programming Languages and Systems 

(TOPLAS), Volume 27 Issue 6 

Publisher: ACM Press 

Full text available: Q pdf(622.69 KB) Additional Information: full citation , abstract , references , index terms 

Many important applications must run continuously and without interruption, and yet also 
must be changed to fix bugs or upgrade functionality. No prior general-purpose 
methodology for dynamic updating achieves a practical balance between flexibility, 
robustness, low overhead, ease of use, and low cost. We present an approach for C-like 
languages that provides type-safe dynamic updating of native code in an extremely 
flexible manner— code, data, and types may be updated, at programmer-determined ... 

Keywords: Dynamic software updating, typed assembly language 
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CarTel is a mobile sensor computing system designed to collect, process, deliver, and 
visualize data from sensors located on mobile units such as automobiles. A CarTel node is 
a mobile embedded computer coupled to a set of sensors. Each node gathers and 
processes sensor readings locally before delivering them to a central portal, where the 
data is stored in a database for further analysis and visualization. In the automotive 
context, a variety of on-board and external sensors colle ... 
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Energy-efficient embedded systems rely on domain-specific coprocessors for dedicated 
tasks such as baseband processing, video coding, or encryption. We present a language 
and design environment called GEZEL that can be used for the design, verification and 
implementation of such coprocessor-based systems.The GEZEL environment creates a 
platform simulator by combining a hardware simulation kernel with one or more 
instruction-set simulators. The hardware part of the platform is programmed in GEZEL .. 

Keywords: Cosimulation, hardware description language, hardware-software codesign 
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We present the design and evaluation of TVA, a network architecture that limits the 
impact of Denial of Service (DoS) floods from the outset. Our work builds on earlier work 
on capabilities in which senders obtain short-term authorizations from receivers that they 
stamp on their packets. We address the full range of possible attacks against 
communication between pairs of hosts, including spoofed packet floods, network and host 
bottlenecks, and router state exhaustion. We use simulation to show t ... 

Keywords: denial-pf-service, internet 
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October 2007 Proceedings of the 6th international conference on Generative 
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Full text available: ^| pdf(338.60 KB) Additional Information: full citation , abstract , references , index terms 

Software written in one language often needs to construct sentences in another language, 
such as SQL queries, XML output, or shell command invocations. This is almost always 
done using unhygienic string manipulation, the concatenation of constants and client- 
supplied strings. A client can then supply specially crafted input that causes the 
constructed sentence to be interpreted in an unintended way, leading to an injection 
attack. We describe a more natural style of programming ... 

Keywords: injection attacks, stringborg, syntax embedding 
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